A critical vulnerability (CVE-2025-2825) in CrushFTP, a widely used enterprise file transfer solution, allows attackers to bypass authentication and gain unauthorized server access. The vulnerability, which affects versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0, received a CVSS score of 9.8, categorizing it as critical due to its low complexity and severe potential impact. The […]
The post CrushFTP Vulnerability Exploited to Gain Full Server Access appeared first on Cyber Security News.
This article has been indexed from Cyber Security News